Download - Mako PCI Presentation

Transcript
Page 1: Mako PCI Presentation

Small Site PCI DSSNetwork Security Service

Provider

N E T W O R K S

Page 2: Mako PCI Presentation

TM

Why PCI DSSWhy PCI DSS

The Payment Card Industry have responded to the sharp growth of credit card fraud, identity theft and other credit card associated crimes by developing a security standard for all users of their services.

Page 3: Mako PCI Presentation

TM

Repercussions of Repercussions of Non-ComplianceNon-Compliance

Failing to comply with the mandatory PCI DSS requirements is not an option for ongoing credit card acceptance.

Non-compliance will result in a range of penalties imposed by the Payment Card Industry to the Acquirer.

The penalties include fines, restrictions and the possible loss of ability to accept card payments.

Page 4: Mako PCI Presentation

What is the Mako System?What is the Mako System?

TM

• Managed Services Platform for Broadband Networking

• Specifically developed to connect SMEs via the Internet

• The Mako System consists of:

• A range of appliances

• A hosted central management platform

Page 5: Mako PCI Presentation

Transition to IP?Transition to IP?

TM

• Save millions per annum on fees

• Cheaper and easier for merchants to deploy multiple lanes

• Future-proof your network

Page 6: Mako PCI Presentation

• Mako VPN Concentrator can be

placed in front of the payment

gateway

• Only communication via

secure encrypted VPN allowed

• Simple and effective way to

control communication

between POS terminal fleet

and payment gateway

Securing Payment Securing Payment Gateway ConnectivityGateway Connectivity

TM

Page 7: Mako PCI Presentation

Mako System & PCI DSSMako System & PCI DSS

TM

• Level One Service ProviderAudited against all 200+ points by DeloitteRoC issued 03 Feb 2010

Page 8: Mako PCI Presentation

Mako System & PCI DSSMako System & PCI DSS

TM

• Protection for POS networksControls terminal connectivityAlerts on unauthorised terminal connection

Page 9: Mako PCI Presentation

• Devices on a merchant’s POS

network are registered and

known by the Mako

• Connection of any

unregistered devices triggers

an alert

• Merchant/QSA/Bank notified

Controlling Devices on the Controlling Devices on the POS NetworkPOS Network

TM

Page 10: Mako PCI Presentation

• Mako ensures configured POS

terminals can only

communicate with the

payment gateway

• Any modification of this

configuration triggers an alert

to merchant/QSA/bank

Controlling Terminal Controlling Terminal ConnectivityConnectivity

TM

Page 11: Mako PCI Presentation

TM

Maintaining PCI DSS Maintaining PCI DSS Compliance with MakoCompliance with Mako

The Mako System ensures that merchants remain compliant

PCI status reporting

Proactive alerts advise when a merchant is at risk of

breaching PCI DSS compliance

Page 12: Mako PCI Presentation

Importance of Using Mako Importance of Using Mako in Achieving Compliancein Achieving Compliance

The Mako System addresses 100% of the Network Security requirements under the PCI DSS

No other security vendor does this

Additionally the Mako System assists compliance in the documentation process

TM

Page 13: Mako PCI Presentation

Mako QSA BundleMako QSA Bundle• QSA-approved on-line documentation & procedures

• Provides a complete PCI DSS solution

TM

Page 14: Mako PCI Presentation

TM

Card-Present Merchants Card-Present Merchants Meeting PCI DSS Meeting PCI DSS

ComplianceCompliance

Page 15: Mako PCI Presentation

TM

Card-Present Merchants Card-Present Merchants Meeting PCI DSS Meeting PCI DSS

ComplianceCompliance

Page 16: Mako PCI Presentation

PCI DSS Network PCI DSS Network Vendor Comparison - Day Vendor Comparison - Day

11

TM

Page 17: Mako PCI Presentation

PCI DSS Network PCI DSS Network Vendor Comparison - Day Vendor Comparison - Day

90*90*

TM

* With no on-site visits or engineering costs

Page 18: Mako PCI Presentation

With the Mako System:

•Not just a firewall •Complete PCI compliant network and management system•Turnkey•Cost effective PCI DSS networking security service

TM

Meeting PCI DSS Meeting PCI DSS ComplianceCompliance

Traditional solutions:

•Substantial amount of ongoing engineering•Extremely costly •Core network upgrades

Page 19: Mako PCI Presentation

Miscommunication About Miscommunication About Gaining ComplianceGaining Compliance

TM

• No single solution can address all issues of

compliance.

• All providers must be PCI DSS compliant in order

for a merchant to be compliant.

• Miscommunication from payment gateway

providers stating that using their system provides

full compliance.

Page 20: Mako PCI Presentation

TM

Maximise Internet Productivity and Minimise Associated Costs

Pieces of the puzzle

PCIPOSS/W

Terminals

PaymentGateway

Firewall

Policies A/V

ProtectStored Data

Track &Monitor

Page 21: Mako PCI Presentation

TM

For businesses wanting to provide a PCI DSS compliant networking and security service to merchants the Mako cloud computing model is the most effective solution.

•Reduced support costs•Greater profits and annuity revenue stream•Increased customer satisfaction

Benefits of the Mako Benefits of the Mako System in PCI DSS System in PCI DSS

ComplianceCompliance

Page 22: Mako PCI Presentation

N E T W O R K S